$ rpki-client -vvf rpki.apnic.net/member_repository/A914A8CB/C8B0F4F221C111E7954E8717C4F9AE02/_zJ4o61YsYpUbj_tzVN4QFJ3Z6g.mft File: _zJ4o61YsYpUbj_tzVN4QFJ3Z6g.mft (raw, json) Hash identifier: DdGR4QEklRNJB828c2czAxuXzCkNUNYB3Dy6Kta526I= Subject key identifier: 21:CE:DA:56:82:C5:40:6D:C1:0D:3F:E8:2D:20:38:FE:63:36:A2:C4 Authority key identifier: FF:32:78:A3:AD:58:B1:8A:54:6E:3F:ED:CD:53:78:40:52:77:67:A8 Certificate issuer: /CN=A914A8CB/serialNumber=FF3278A3AD58B18A546E3FEDCD537840527767A8 Certificate serial: 1AC3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_zJ4o61YsYpUbj_tzVN4QFJ3Z6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A8CB/C8B0F4F221C111E7954E8717C4F9AE02/_zJ4o61YsYpUbj_tzVN4QFJ3Z6g.mft Manifest number: 1AAC Signing time: Sun 24 Nov 2024 16:13:05 +0000 Manifest this update: Sun 24 Nov 2024 16:13:05 +0000 Manifest next update: Sun 01 Dec 2024 16:13:05 +0000 Files and hashes: 1: _zJ4o61YsYpUbj_tzVN4QFJ3Z6g.crl (hash: s6Sry+eDZy3cbMLmZoHQawg26UfYxiieUGr6k4/WjR4=) 2: 90C8D27021C211E786829418C4F9AE02.roa (hash: LAyDzMwa+0p5sRd95KyHExi3C3Z0niccQY6hw3OgiYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A8CB/C8B0F4F221C111E7954E8717C4F9AE02/_zJ4o61YsYpUbj_tzVN4QFJ3Z6g.crl rsync://rpki.apnic.net/member_repository/A914A8CB/C8B0F4F221C111E7954E8717C4F9AE02/_zJ4o61YsYpUbj_tzVN4QFJ3Z6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_zJ4o61YsYpUbj_tzVN4QFJ3Z6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6851 (0x1ac3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A8CB/serialNumber=FF3278A3AD58B18A546E3FEDCD537840527767A8 Validity Not Before: Nov 24 16:13:05 2024 GMT Not After : Dec 1 16:13:05 2024 GMT Subject: CN=67435091-aa16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:0d:bf:cf:45:fc:ce:8b:18:bb:a1:7f:4e:fb: 33:6c:b1:f8:45:1a:b3:f9:8b:6c:ca:b0:8f:4a:40: 7e:0e:87:b1:af:e5:f5:b0:46:aa:db:1a:49:de:9a: 0a:ab:43:ac:cb:63:f6:3c:a1:24:bb:95:e4:1d:e1: 75:bb:74:01:e1:e4:86:2c:29:5c:98:89:37:2f:11: 70:4c:6f:da:6d:72:23:87:0a:b5:05:73:3a:77:23: 67:9c:45:cc:20:e7:ac:52:a3:c8:5d:27:1c:d1:0a: 38:43:c0:a0:a2:e6:eb:b3:fe:78:23:7e:7a:20:88: 71:43:62:33:50:e8:1b:d2:44:df:ae:a2:36:12:3c: 61:38:b0:41:c6:24:46:b3:bc:6c:2f:b4:94:eb:ae: 0d:97:63:cd:21:ac:a2:26:8f:da:ff:df:a3:ca:56: 2d:19:95:eb:11:a4:6b:e3:b7:89:03:08:c2:b3:5e: 6a:2a:12:74:ca:8b:9c:bb:e0:9c:9b:8c:44:9f:5b: 13:2d:66:5f:26:c1:31:91:3f:2e:e8:36:ef:84:7a: ee:e9:7c:f0:11:f2:e0:e9:88:13:7d:49:09:49:19: 59:2c:88:ec:09:b4:0e:02:d0:3e:63:14:ec:33:2f: df:52:f0:d2:b2:d4:33:68:75:20:fe:9b:63:46:5d: 0c:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:CE:DA:56:82:C5:40:6D:C1:0D:3F:E8:2D:20:38:FE:63:36:A2:C4 X509v3 Authority Key Identifier: keyid:FF:32:78:A3:AD:58:B1:8A:54:6E:3F:ED:CD:53:78:40:52:77:67:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A8CB/C8B0F4F221C111E7954E8717C4F9AE02/_zJ4o61YsYpUbj_tzVN4QFJ3Z6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_zJ4o61YsYpUbj_tzVN4QFJ3Z6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A8CB/C8B0F4F221C111E7954E8717C4F9AE02/_zJ4o61YsYpUbj_tzVN4QFJ3Z6g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:0b:04:54:6c:d6:dd:24:a5:69:fd:cb:31:60:90:3e:f5:27: 09:14:be:38:db:40:1f:65:4e:24:33:bb:71:65:fe:95:ca:c2: 6b:b0:86:c9:76:03:87:b2:19:e5:0f:4e:d8:9a:73:11:5a:2c: 09:f2:3b:3c:9e:59:69:a2:7b:b7:a3:9f:2f:7d:ce:d9:7a:92: 21:fa:a0:2c:43:41:89:d3:a5:a7:63:32:4e:d5:fe:26:c6:e5: f1:2e:93:eb:81:91:09:1f:36:9d:c9:cd:86:b6:dd:25:95:cb: 46:b3:ef:f1:db:8a:11:0a:14:e7:16:5d:ed:f2:78:fd:44:ae: b9:3f:b5:92:81:af:7c:bc:ab:e5:2f:b6:10:85:9b:8f:ee:1c: 09:9f:98:80:2a:cd:c5:4a:8f:7b:57:fd:db:40:cc:42:fc:31: 04:98:10:ef:87:cb:54:15:dc:a7:ae:1e:b5:9f:5a:67:52:bb: cd:41:db:93:e9:eb:28:8b:41:dd:e6:93:21:c0:29:4d:be:ba: ea:47:83:6c:ec:d4:41:af:62:fc:bb:6d:9d:eb:5a:ec:70:fd: b0:2b:db:2f:72:54:22:ef:6b:81:5e:46:e5:11:a6:c5:11:72: e6:26:9f:fa:ea:8c:21:4d:cc:a0:a1:ba:52:c2:72:b9:5c:24: 35:f3:0f:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGsMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE4Q0IxMTAvBgNVBAUTKEZGMzI3OEEzQUQ1OEIxOEE1NDZFM0ZFRENENTM3ODQw NTI3NzY3QTgwHhcNMjQxMTI0MTYxMzA1WhcNMjQxMjAxMTYxMzA1WjAYMRYwFAYD VQQDEw02NzQzNTA5MS1hYTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Q2/z0X8zosYu6F/TvszbLH4RRqz+YtsyrCPSkB+Doexr+X1sEaq2xpJ3poK q0Osy2P2PKEku5XkHeF1u3QB4eSGLClcmIk3LxFwTG/abXIjhwq1BXM6dyNnnEXM IOesUqPIXScc0Qo4Q8Cgoubrs/54I356IIhxQ2IzUOgb0kTfrqI2EjxhOLBBxiRG s7xsL7SU664Nl2PNIayiJo/a/9+jylYtGZXrEaRr47eJAwjCs15qKhJ0youcu+Cc m4xEn1sTLWZfJsExkT8u6DbvhHru6XzwEfLg6YgTfUkJSRlZLIjsCbQOAtA+YxTs My/fUvDSstQzaHUg/ptjRl0MhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCHO2laC xUBtwQ0/6C0gOP5jNqLEMB8GA1UdIwQYMBaAFP8yeKOtWLGKVG4/7c1TeEBSd2eo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QThDQi9DOEIwRjRGMjIx QzExMUU3OTU0RTg3MTdDNEY5QUUwMi9feko0bzYxWXNZcFVial90elZONFFGSjNa NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL196SjRvNjFZc1lwVWJqX3R6Vk40UUZKM1o2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QThDQi9DOEIwRjRGMjIxQzExMUU3OTU0RTg3MTdDNEY5QUUwMi9feko0bzYxWXNZ cFVial90elZONFFGSjNaNmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1CwRUbNbdJKVp/csxYJA+9ScJFL4420AfZU4kM7txZf6VysJrsIbJ dgOHshnlD07YmnMRWiwJ8js8nllponu3o58vfc7ZepIh+qAsQ0GJ06WnYzJO1f4m xuXxLpPrgZEJHzadyc2Gtt0llctGs+/x24oRChTnFl3t8nj9RK65P7WSga98vKvl L7YQhZuP7hwJn5iAKs3FSo97V/3bQMxC/DEEmBDvh8tUFdynrh61n1pnUrvNQduT 6esoi0Hd5pMhwClNvrrqR4Ns7NRBr2L8u22d61rscP2wK9svclQi72uBXkblEabF EXLmJp/66owhTcygobpSwnK5XCQ18w/q -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:03 2024 by rpki-client on console-fra.rpki-client.org